Vulnerabilities > Insyde > High

DATE CVE VULNERABILITY TITLE RISK
2022-02-03 CVE-2021-42060 Unspecified vulnerability in Insyde Insydeh2O
An issue was discovered in Insyde InsydeH2O Kernel 5.0 through 05.08.41, Kernel 5.1 through 05.16.41, Kernel 5.2 before 05.23.22, and Kernel 5.3 before 05.32.22.
local
low complexity
insyde
8.2
8.2
2022-02-03 CVE-2021-42113 Unspecified vulnerability in Insyde Insydeh2O
An issue was discovered in StorageSecurityCommandDxe in Insyde InsydeH2O with Kernel 5.1 before 05.14.28, Kernel 5.2 before 05.24.28, and Kernel 5.3 before 05.32.25.
local
low complexity
insyde
8.2
8.2
2022-02-03 CVE-2021-42554 Out-of-bounds Write vulnerability in multiple products
An issue was discovered in Insyde InsydeH2O with Kernel 5.0 before 05.08.42, Kernel 5.1 before 05.16.42, Kernel 5.2 before 05.26.42, Kernel 5.3 before 05.35.42, Kernel 5.4 before 05.42.51, and Kernel 5.5 before 05.50.51.
local
low complexity
insyde siemens CWE-787
8.2
8.2
2022-02-03 CVE-2021-43323 Unspecified vulnerability in Insyde Insydeh2O
An issue was discovered in UsbCoreDxe in Insyde InsydeH2O with kernel 5.5 before 05.51.45, 5.4 before 05.43.45, 5.3 before 05.35.45, 5.2 before 05.26.45, 5.1 before 05.16.45, and 5.0 before 05.08.45.
local
low complexity
insyde
8.2
8.2
2022-02-03 CVE-2021-43615 Out-of-bounds Write vulnerability in Insyde Insydeh2O
An issue was discovered in HddPassword in Insyde InsydeH2O with kernel 5.1 before 05.16.23, 5.2 before 05.26.23, 5.3 before 05.35.23, 5.4 before 05.43.22, and 5.5 before 05.51.22.
local
low complexity
insyde CWE-787
8.2
8.2
2022-02-03 CVE-2022-24030 Out-of-bounds Write vulnerability in Insyde Insydeh2O
An issue was discovered in AhciBusDxe in Insyde InsydeH2O with kernel 5.1 through 5.5.
local
high complexity
insyde CWE-787
7.5
7.5
2022-02-03 CVE-2022-24031 Out-of-bounds Write vulnerability in Insyde Insydeh2O
An issue was discovered in NvmExpressDxe in Insyde InsydeH2O with kernel 5.1 through 5.5.
local
low complexity
insyde CWE-787
8.2
8.2
2022-02-03 CVE-2020-5953 A vulnerability exists in System Management Interrupt (SWSMI) handler of InsydeH2O UEFI Firmware code located in SWSMI handler that dereferences gRT (EFI_RUNTIME_SERVICES) pointer to call a GetVariable service, which is located outside of SMRAM.
local
high complexity
insyde siemens
7.5
7.5
2022-02-03 CVE-2021-43522 Out-of-bounds Write vulnerability in Insyde Insydeh2O
An issue was discovered in Insyde InsydeH2O with kernel 5.1 through 2021-11-08, 5.2 through 2021-11-08, and 5.3 through 2021-11-08.
local
high complexity
insyde CWE-787
7.5
7.5
2022-02-03 CVE-2022-24069 Unspecified vulnerability in Insyde Insydeh2O
An issue was discovered in AhciBusDxe in Insyde InsydeH2O with kernel 5.0 before 05.08.41, 5.1 before 05.16.29, 5.2 before 05.26.29, 5.3 before 05.35.29, 5.4 before 05.43.29, and 5.5 before 05.51.29.
local
low complexity
insyde
8.2
8.2